City: Secunda
Region: Mpumalanga
Country: South Africa
Internet Service Provider: Vodacom
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.243.2.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14563
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;105.243.2.13. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025062800 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 28 21:46:38 CST 2025
;; MSG SIZE rcvd: 10513.2.243.105.in-addr.arpa domain name pointer vc-gp-n-105-243-2-13.umts.vodacom.co.za.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
13.2.243.105.in-addr.arpa name = vc-gp-n-105-243-2-13.umts.vodacom.co.za.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 49.51.163.30 | attackspambots | 49.51.163.30 - - [12/Nov/2019:07:30:50 +0100] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 49.51.163.30 - - [12/Nov/2019:07:30:50 +0100] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 49.51.163.30 - - [12/Nov/2019:07:30:51 +0100] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 49.51.163.30 - - [12/Nov/2019:07:30:51 +0100] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 49.51.163.30 - - [12/Nov/2019:07:30:51 +0100] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 49.51.163.30 - - [12/Nov/2019:07:30:51 +0100] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2019-11-12 16:33:07 |
| 106.12.201.101 | attackspam | 2019-11-12T02:14:57.9017851495-001 sshd\[56881\]: Invalid user host from 106.12.201.101 port 54230 2019-11-12T02:14:57.9048461495-001 sshd\[56881\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.201.101 2019-11-12T02:15:00.1182661495-001 sshd\[56881\]: Failed password for invalid user host from 106.12.201.101 port 54230 ssh2 2019-11-12T02:19:08.8678021495-001 sshd\[57026\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.201.101 user=root 2019-11-12T02:19:11.2068841495-001 sshd\[57026\]: Failed password for root from 106.12.201.101 port 60742 ssh2 2019-11-12T02:23:39.3167831495-001 sshd\[57198\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.201.101 user=root ... |
2019-11-12 16:28:13 |
| 109.88.66.186 | attackspam | Nov 11 13:42:16 vpxxxxxxx22308 sshd[10766]: Invalid user pi from 109.88.66.186 Nov 11 13:42:16 vpxxxxxxx22308 sshd[10765]: Invalid user pi from 109.88.66.186 Nov 11 13:42:16 vpxxxxxxx22308 sshd[10766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.88.66.186 Nov 11 13:42:16 vpxxxxxxx22308 sshd[10765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.88.66.186 Nov 11 13:42:18 vpxxxxxxx22308 sshd[10766]: Failed password for invalid user pi from 109.88.66.186 port 52948 ssh2 Nov 11 13:42:18 vpxxxxxxx22308 sshd[10765]: Failed password for invalid user pi from 109.88.66.186 port 52942 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=109.88.66.186 |
2019-11-12 16:41:46 |
| 104.236.246.16 | attackspambots | Nov 12 08:41:18 jane sshd[5105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.246.16 Nov 12 08:41:20 jane sshd[5105]: Failed password for invalid user test from 104.236.246.16 port 37686 ssh2 ... |
2019-11-12 16:35:02 |
| 209.17.96.90 | attackspam | 209.17.96.90 was recorded 12 times by 10 hosts attempting to connect to the following ports: 5916,118,3389,8531,9092,37777,8888,11211,2001,22. Incident counter (4h, 24h, all-time): 12, 28, 263 |
2019-11-12 16:46:08 |
| 117.207.242.99 | attackbots | Unauthorised access (Nov 12) SRC=117.207.242.99 LEN=52 PREC=0x20 TTL=112 ID=12483 DF TCP DPT=445 WINDOW=8192 SYN |
2019-11-12 16:38:03 |
| 51.254.51.182 | attack | SSH bruteforce |
2019-11-12 16:40:18 |
| 153.126.190.205 | attackspam | frenzy |
2019-11-12 17:01:13 |
| 106.12.83.210 | attackbotsspam | Invalid user 123456 from 106.12.83.210 port 47708 |
2019-11-12 16:28:26 |
| 91.97.105.123 | attack | 2019-11-12T06:30:06.221262abusebot-4.cloudsearch.cf sshd\[23753\]: Invalid user pi from 91.97.105.123 port 52512 |
2019-11-12 16:29:58 |
| 54.37.151.239 | attack | Nov 12 06:29:32 l02a sshd[30751]: Invalid user dokter from 54.37.151.239 Nov 12 06:29:32 l02a sshd[30751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.151.239 Nov 12 06:29:32 l02a sshd[30751]: Invalid user dokter from 54.37.151.239 Nov 12 06:29:35 l02a sshd[30751]: Failed password for invalid user dokter from 54.37.151.239 port 57900 ssh2 |
2019-11-12 16:51:43 |
| 51.75.52.127 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 43 - port: 8101 proto: TCP cat: Misc Attack |
2019-11-12 16:59:02 |
| 83.172.105.208 | attack | 11/12/2019-07:29:32.993908 83.172.105.208 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 87 |
2019-11-12 16:53:15 |
| 51.79.65.158 | attack | SSH/22 MH Probe, BF, Hack - |
2019-11-12 16:32:49 |
| 103.133.108.33 | attack | Invalid user system from 103.133.108.33 port 51453 |
2019-11-12 16:29:35 |